Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/TbUDlMPo8jC4vcriB9B08OISTUg.roa
File: TbUDlMPo8jC4vcriB9B08OISTUg.roa (raw, json)
Hash identifier: SjjHyOLlrKUUF9Za7/kwTpFIjJ8i4/T0drWurYhhy8E=
Subject key identifier: 4D:B5:03:94:C3:E8:F2:30:B8:BD:CA:E2:07:D0:74:F0:E2:12:4D:48
Certificate issuer: /CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Certificate serial: 018B043414498AA0C9435FB7EE0B89CBEB9E
Authority key identifier: 44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/TbUDlMPo8jC4vcriB9B08OISTUg.roa
Signing time: Fri 06 Oct 2023 08:56:43 +0000
ROA not before: Fri 06 Oct 2023 08:56:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 35598
IP address blocks: 2a09:3800::/32 maxlen: 32
Validation: Failed, certificate revoked on Mon 16 Oct 2023 12:34:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:04:34:14:49:8a:a0:c9:43:5f:b7:ee:0b:89:cb:eb:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4459ec2a5fd53909c5239f4cc8d6d329a2779bb1
Validity
Not Before: Oct 6 08:56:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=4db50394c3e8f230b8bdcae207d074f0e2124d48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:24:f5:20:4d:bb:1a:65:5b:97:63:44:ca:67:
84:21:9a:04:df:cb:9b:ec:05:e7:93:f0:c0:16:77:
bd:d1:78:22:a9:8d:95:b1:3a:6d:11:8e:e8:65:40:
86:7a:81:83:f6:86:92:9e:a7:48:d7:df:2e:cd:1c:
60:dd:99:93:7e:2b:4a:c9:20:d1:bb:d3:24:0f:da:
96:82:9b:5e:63:be:6a:83:f5:6e:3e:ed:c1:a3:15:
14:b5:7a:9a:c9:e4:ee:66:78:28:ee:cb:6d:a5:c9:
18:64:75:5c:5e:3a:9a:1b:d5:d0:87:e8:4c:94:e9:
ce:93:eb:dc:2d:32:ce:01:8e:d5:d0:8a:b7:dd:e1:
73:7c:2b:09:4c:e1:8a:94:5a:a8:cd:82:54:8f:47:
8d:f7:22:30:e1:81:42:6f:81:03:c4:22:95:ab:6e:
b2:08:0d:2b:0e:91:2a:74:46:21:33:2e:32:60:2f:
18:5d:ee:cb:cc:d8:a2:7f:e3:a7:57:f8:0b:bf:04:
43:8e:96:17:c2:21:33:69:60:a1:21:e0:ef:5e:5c:
72:26:3d:32:b5:95:1b:5c:7e:07:18:ba:36:18:fc:
4b:3c:93:d4:49:8e:15:70:b4:64:f0:00:87:86:d7:
ec:37:6b:c2:b3:38:e3:23:76:65:83:f7:3f:31:96:
da:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:B5:03:94:C3:E8:F2:30:B8:BD:CA:E2:07:D0:74:F0:E2:12:4D:48
X509v3 Authority Key Identifier:
keyid:44:59:EC:2A:5F:D5:39:09:C5:23:9F:4C:C8:D6:D3:29:A2:77:9B:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RFnsKl_VOQnFI59MyNbTKaJ3m7E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/TbUDlMPo8jC4vcriB9B08OISTUg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/f0ae62-c107-43ce-a8a9-6b4372602096/1/RFnsKl_VOQnFI59MyNbTKaJ3m7E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2a09:3800::/32
Signature Algorithm: sha256WithRSAEncryption
48:57:eb:53:89:cf:30:69:06:60:7d:90:03:2b:da:76:62:f2:
01:ad:80:bd:0c:19:a1:42:8d:98:2f:5c:7b:49:8d:7f:b4:d7:
7e:b7:79:e3:da:d6:ed:95:2e:73:7a:44:8b:24:4a:20:a3:c0:
02:62:47:72:fb:ad:87:d4:68:65:57:78:12:c9:e4:a4:78:a2:
aa:17:34:8d:f2:90:fa:d1:ed:04:65:1a:bb:22:3c:96:16:34:
90:a1:d5:03:70:4a:06:20:c0:1a:43:79:df:44:6e:6d:42:60:
00:19:a3:b8:a5:0d:bb:5d:59:9f:59:90:1f:56:c9:8f:23:ff:
0d:04:14:7a:06:17:da:92:a1:47:1a:12:a5:dd:89:98:67:29:
03:78:ef:93:f3:cb:63:ac:c0:85:a6:c5:11:e4:87:bd:f8:1f:
5c:86:63:07:1d:7e:6c:02:dd:16:67:1d:88:92:7d:27:3d:0b:
01:4d:24:28:2d:67:ca:f2:95:aa:b7:cf:15:75:f5:f6:db:3b:
f6:20:fe:47:cf:56:d8:96:3e:ae:f7:3e:7c:bd:e7:79:bf:d1:
93:8e:4c:d1:fb:36:09:d0:89:63:c2:81:09:d4:ad:80:47:b1:
c5:9a:87:93:48:52:5a:c6:5d:7c:d6:b1:f2:50:85:65:31:9f:
a3:ac:46:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:05 2024 by rpki-client on console-fra.rpki-client.org